Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 30, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 226581 | 7.5 | 危険 | Daniel Choi | - | Ruby 用 fastreader Gem における任意のコマンドを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2013-2615 | 2013-03-25 14:20 | 2013-03-12 | Show | GitHub Exploit DB Packet Storm |
| 226582 | 7.5 | 危険 | Stefaan Colman | - | Ruby 用 command_wrap Gem における任意のコマンドを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2013-1875 | 2013-03-25 14:19 | 2013-03-18 | Show | GitHub Exploit DB Packet Storm |
| 226583 | 6.2 | 警告 | Schweitzer Engineering Laboratories | - | Schweitzer Engineering Laboratories の AcSELerator QuickSet における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-0665 | 2013-03-25 14:12 | 2013-03-20 | Show | GitHub Exploit DB Packet Storm |
| 226584 | 4.3 | 警告 | シーメンス | - | Siemens WinCC の HMI Web アプリケーションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0667 | 2013-03-25 11:35 | 2013-03-15 | Show | GitHub Exploit DB Packet Storm |
| 226585 | 9.3 | 危険 | リアルネットワークス | - | RealNetworks RealPlayer および RealPlayer SP におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2013-1750 | 2013-03-22 16:20 | 2013-03-15 | Show | GitHub Exploit DB Packet Storm |
| 226586 | 2.1 | 注意 | Mathijs Koenraadt | - | Drupal 用 Search API Sorts モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0227 | 2013-03-22 16:16 | 2013-01-23 | Show | GitHub Exploit DB Packet Storm |
| 226587 | 6 | 警告 | Ivan Zugec | - | Drupal 用 Keyboard Shortcut Utility モジュールにおけるノードを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-0226 | 2013-03-22 16:16 | 2013-01-23 | Show | GitHub Exploit DB Packet Storm |
| 226588 | 2.1 | 注意 | User Relationships project | - | Drupal 用 User Relationships モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0225 | 2013-03-22 16:15 | 2013-01-23 | Show | GitHub Exploit DB Packet Storm |
| 226589 | 4.4 | 警告 | Heshan Wanigasooriya | - | Drupal 用 Video モジュールにおける任意の PHP コードを実行される脆弱性 |
CWE-16
環境設定 |
CVE-2013-0224 | 2013-03-22 16:15 | 2013-01-23 | Show | GitHub Exploit DB Packet Storm |
| 226590 | 6.8 | 警告 | Leighton Whiting | - | Drupal 用 Mark Complete モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-0207 | 2013-03-22 16:14 | 2013-01-16 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 30, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 274221 | 7.5 |
HIGH
Network |
ntp oracle debian netapp redhat |
ntp linux debian_linux clustered_data_ontap data_ontap oncommand_unified_manager oncommand_performance_manager enterprise_linux_desktop enterprise_linux_workstation enterpr… |
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomple… |
CWE-20
Improper Input Validation |
CVE-2015-7692 | 2024-11-21 11:37 | 2017-08-8 | Show | GitHub Exploit DB Packet Storm |
| 274222 | 7.5 |
HIGH
Network |
ntp oracle debian netapp redhat |
ntp linux debian_linux clustered_data_ontap data_ontap oncommand_unified_manager oncommand_performance_manager enterprise_linux_desktop enterprise_linux_workstation enterpr… |
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey op… |
CWE-20
Improper Input Validation |
CVE-2015-7691 | 2024-11-21 11:37 | 2017-08-8 | Show | GitHub Exploit DB Packet Storm |
| 274223 | 7.0 |
HIGH
Local |
samsung | samsung_mobile | Race condition in the ioctl implementation in the Samsung Graphics 2D driver (aka /dev/fimg2d) in Samsung devices with Android L(5.0/5.1) allows local users to trigger memory errors by leveraging def… |
CWE-362
Race Condition |
CVE-2015-7891 | 2024-11-21 11:37 | 2017-08-3 | Show | GitHub Exploit DB Packet Storm |
| 274224 | 7.5 |
HIGH
Network |
openpgpjs | openpgpjs | s2k.js in OpenPGP.js will decrypt arbitrary messages regardless of passphrase for crafted PGP keys which allows remote attackers to bypass authentication if message decryption is used as an authentic… |
CWE-310
Cryptographic Issues |
CVE-2015-8013 | 2024-11-21 11:37 | 2017-07-26 | Show | GitHub Exploit DB Packet Storm |
| 274225 | 9.8 |
CRITICAL
Network |
mediawiki | mediawiki | The MWOAuthDataStore::lookup_token function in Extension:OAuth for MediaWiki 1.25.x before 1.25.3, 1.24.x before 1.24.4, and before 1.23.11 does not properly validate the signature when checking the … |
CWE-255
Credentials Management |
CVE-2015-8009 | 2024-11-21 11:37 | 2017-07-25 | Show | GitHub Exploit DB Packet Storm |
| 274226 | 7.5 |
HIGH
Network |
ntp oracle debian netapp redhat |
ntp linux debian_linux clustered_data_ontap data_ontap oncommand_unified_manager oncommand_performance_manager enterprise_linux_desktop enterprise_linux_workstation enterpr… |
The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address th… |
CWE-20
Improper Input Validation |
CVE-2015-7703 | 2024-11-21 11:37 | 2017-07-24 | Show | GitHub Exploit DB Packet Storm |
| 274227 | 5.5 |
MEDIUM
Local |
samsung | samsung_mobile | Samsung Gallery in the Samsung Galaxy S6 allows local users to cause a denial of service (process crash). |
CWE-284
Improper Access Control |
CVE-2015-7898 | 2024-11-21 11:37 | 2017-06-28 | Show | GitHub Exploit DB Packet Storm |
| 274228 | 5.5 |
MEDIUM
Local |
samsung | samsung_mobile | Samsung Gallery on the Samsung Galaxy S6 allows local users to cause a denial of service (process crash). |
CWE-284
Improper Access Control |
CVE-2015-7895 | 2024-11-21 11:37 | 2017-06-28 | Show | GitHub Exploit DB Packet Storm |
| 274229 | 7.5 |
HIGH
Network |
zohocorp | manageengine_firewall_analyzer | ManageEngine Firewall Analyzer before 8.0 does not restrict access permissions. |
CWE-275
Permission Issues |
CVE-2015-7781 | 2024-11-21 11:37 | 2017-06-28 | Show | GitHub Exploit DB Packet Storm |
| 274230 | 6.5 |
MEDIUM
Network |
zohocorp | manageengine_firewall_analyzer | Directory traversal vulnerability in ManageEngine Firewall Analyzer before 8.0. |
CWE-22
Path Traversal |
CVE-2015-7780 | 2024-11-21 11:37 | 2017-06-28 | Show | GitHub Exploit DB Packet Storm |